[Web-cyradm] force change password

[Mufit Eribol]

Hello,

I have a working setup of Postfix-Cyrus-Web-cyradm configured as per the 
Web-cyradm HOWTO. I am quite happy with Web-cyradm and many thanks for 
the hard work devoted in this nice software.

As a measure of security, I would like to force users to change their 
passwords periodically. For this, I installed "Change SQL Password" 
plugin of Squirrelmail and slightly modified accountuser table by adding 
one more field (force_change_pwd) at the end of the table. It works fine.

My problem is that the users use an imap client software (mainly 
thunderbird) to access the cyrus imap server. So, they can use mail 
boxes using the same old password as long as they use solely an imap 
client other than squirrelmail. As expected, the "Change SQL Password" 
plugin does not force the users who opt not to use squirrelmail.

My questions are:

1. Is there a way to block using an imap client (other than 
squirrelmail), say thunderbird, as long as force_change_pwd in 
accountuser table is set to 1?
2. Is there another way to force password change for Cyrus imap other 
than "Change SQL Password" plugin of Squirrelmail?
3. If there is no a quick solution to this problem, how can I block all 
the imap clients (thunderbird, outlook etc) except Squirrelmail 
accessing the imap server?
4. Any other possible solution to this problem?

Thank you very much.

Regards,
Mufit

PS. cyrus.conf and imapd.conf of my setup attached
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: cyrus.conf
Url: http://foxi.bitheads.ch/pipermail/web-cyradm/attachments/20081002/9eea8a4d/cyrus.ksh
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: imapd.conf
Url: http://foxi.bitheads.ch/pipermail/web-cyradm/attachments/20081002/9eea8a4d/imapd.cc